This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/aIl3Llcq813igkMcWrFjAIoXctc.roa File: aIl3Llcq813igkMcWrFjAIoXctc.roa (raw, json) Hash identifier: KXGJiHVjrQ4DWQ0BvplY8WPWzX9Lt/mBu9x8K9sjzPM= Subject key identifier: 68:89:77:2E:57:2A:F3:5D:E2:82:43:1C:5A:B1:63:00:8A:17:72:D7 Certificate issuer: /CN=92f7d213fa13708e3200184ff1bc391577cc252f Certificate serial: 019B7EA4454F23B0A93AECB64C26FC10B3E7 Authority key identifier: 92:F7:D2:13:FA:13:70:8E:32:00:18:4F:F1:BC:39:15:77:CC:25:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvfSE_oTcI4yABhP8bw5FXfMJS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/aIl3Llcq813igkMcWrFjAIoXctc.roa Signing time: Fri 02 Jan 2026 12:17:33 +0000 ROA not before: Fri 02 Jan 2026 12:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202044 IP address blocks: 2a13:c40::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/kvfSE_oTcI4yABhP8bw5FXfMJS8.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/kvfSE_oTcI4yABhP8bw5FXfMJS8.mft rsync://rpki.ripe.net/repository/DEFAULT/kvfSE_oTcI4yABhP8bw5FXfMJS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:45:4f:23:b0:a9:3a:ec:b6:4c:26:fc:10:b3:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92f7d213fa13708e3200184ff1bc391577cc252f Validity Not Before: Jan 2 12:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6889772e572af35de282431c5ab163008a1772d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:11:b3:32:5a:34:14:98:fb:14:aa:47:90:fe: 67:0d:5a:b4:d1:43:e2:7c:0d:a4:b2:4c:39:0c:d8: 2c:87:5c:4c:5d:9b:49:86:05:1c:1a:94:4a:69:41: 3b:6b:eb:41:b1:15:7d:05:d2:39:6c:5a:e1:43:ff: 06:30:73:8c:0f:94:88:ba:c8:cd:b6:58:15:eb:72: 67:1a:d6:3a:99:e4:17:77:6e:4d:ff:7a:a7:6c:73: 3f:f2:3c:9f:77:76:c5:6b:8c:cb:8d:70:45:a4:9f: 17:f4:3e:3b:4d:c8:b9:b5:0d:f8:03:33:85:bc:04: 9e:61:99:a4:b9:aa:aa:5a:d8:ba:90:2e:4a:c6:d8: 53:e6:27:50:cf:b0:70:8e:7d:44:2b:13:40:00:8d: c5:62:64:0a:04:70:24:0f:71:fd:2a:1e:8e:ae:ae: c3:84:67:76:51:0e:5c:5a:1e:95:bf:fe:73:55:aa: 29:69:78:1b:06:ad:e1:e1:ef:74:04:74:f9:fa:4e: f2:c1:ef:7a:d6:20:a0:91:51:f0:a5:f1:9e:ec:f0: 14:eb:28:52:25:a7:89:25:be:a0:2f:59:09:e7:d2: e8:be:95:ce:ac:01:d9:91:82:34:0c:2a:6d:84:96: 1c:82:f1:e1:7d:b0:32:2a:5c:52:d4:91:7b:84:4a: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:89:77:2E:57:2A:F3:5D:E2:82:43:1C:5A:B1:63:00:8A:17:72:D7 X509v3 Authority Key Identifier: keyid:92:F7:D2:13:FA:13:70:8E:32:00:18:4F:F1:BC:39:15:77:CC:25:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvfSE_oTcI4yABhP8bw5FXfMJS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/aIl3Llcq813igkMcWrFjAIoXctc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/kvfSE_oTcI4yABhP8bw5FXfMJS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:c40::/30 Signature Algorithm: sha256WithRSAEncryption 5a:05:05:ef:67:b5:0d:aa:76:e8:69:71:d3:e7:a7:db:fa:90: 79:f2:5e:07:5d:1c:d8:78:25:0b:f5:30:16:a9:a5:88:05:a0: c9:e9:bf:41:b7:6d:a9:2f:a0:e9:6d:11:41:64:3f:7c:95:58: 4b:ec:40:b6:b7:3b:b4:4b:f4:50:55:ad:81:e7:a7:b3:d6:49: de:40:8e:5c:7f:65:e1:33:a5:4f:2b:9a:88:9f:47:fa:76:ea: 3e:8b:da:17:f7:48:d2:7d:e5:1f:da:71:5b:5f:fe:e2:7a:c6: a8:73:ac:93:24:29:b3:b6:37:87:ea:4b:2c:d5:8f:c1:4d:d0: 93:ce:a3:b5:1b:c7:5d:d3:00:51:e3:a4:95:04:9d:98:d8:ca: c3:53:19:13:94:59:fa:92:62:05:33:4f:4f:f4:37:30:b2:8d: d9:ce:ed:64:ca:72:6e:66:d1:25:ef:06:9f:9e:f8:be:4e:ce: 94:ab:ee:be:8d:24:ba:2e:4b:4d:05:03:8f:e5:f9:dc:81:36: aa:51:f6:33:fd:65:48:71:fc:38:a4:db:24:b5:9a:84:66:7c: 04:2c:11:05:03:82:08:2d:ce:2c:2e:dd:9c:a1:8e:ad:8c:9e: 18:eb:73:bf:42:17:c0:f5:31:17:32:a8:ee:c6:e7:d1:b5:e1: 3f:8e:49:e8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pEVPI7CpOuy2TCb8ELPnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyZjdkMjEzZmExMzcwOGUzMjAwMTg0ZmYxYmMzOTE1Nzdj YzI1MmYwHhcNMjYwMTAyMTIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODg5NzcyZTU3MmFmMzVkZTI4MjQzMWM1YWIxNjMwMDhhMTc3MmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BGzMlo0FJj7FKpHkP5nDVq00UPi fA2kskw5DNgsh1xMXZtJhgUcGpRKaUE7a+tBsRV9BdI5bFrhQ/8GMHOMD5SIusjN tlgV63JnGtY6meQXd25N/3qnbHM/8jyfd3bFa4zLjXBFpJ8X9D47Tci5tQ34AzOF vASeYZmkuaqqWti6kC5KxthT5idQz7Bwjn1EKxNAAI3FYmQKBHAkD3H9Kh6Orq7D hGd2UQ5cWh6Vv/5zVaopaXgbBq3h4e90BHT5+k7ywe961iCgkVHwpfGe7PAU6yhS JaeJJb6gL1kJ59LovpXOrAHZkYI0DCpthJYcgvHhfbAyKlxS1JF7hEo57QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGiJdy5XKvNd4oJDHFqxYwCKF3LXMB8GA1UdIwQY MBaAFJL30hP6E3COMgAYT/G8ORV3zCUvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3ZmU0Vfb1RjSTR5QUJoUDhidzVGWGZNSlM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ODIxMDEtYWM5NC00ZjBiLTkzMDkt M2UxOGVlNmI0YTVhLzEvYUlsM0xsY3E4MTNpZ2tNY1dyRmpBSW9YY3RjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi80ODIxMDEtYWM5NC00ZjBiLTkzMDktM2UxOGVlNmI0YTVh LzEva3ZmU0Vfb1RjSTR5QUJoUDhidzVGWGZNSlM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUCKhMMQDAN BgkqhkiG9w0BAQsFAAOCAQEAWgUF72e1Dap26Glx0+en2/qQefJeB10c2HglC/Uw FqmliAWgyem/QbdtqS+g6W0RQWQ/fJVYS+xAtrc7tEv0UFWtgeens9ZJ3kCOXH9l 4TOlTyuaiJ9H+nbqPovaF/dI0n3lH9pxW1/+4nrGqHOskyQps7Y3h+pLLNWPwU3Q k86jtRvHXdMAUeOklQSdmNjKw1MZE5RZ+pJiBTNPT/Q3MLKN2c7tZMpybmbRJe8G n574vk7OlKvuvo0kui5LTQUDj+X53IE2qlH2M/1lSHH8OKTbJLWahGZ8BCwRBQOC CC3OLC7dnKGOrYyeGOtzv0IXwPUxFzKo7sbn0bXhP45J6A== -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:56 2026 by rpki-client